SSL-Tools

SSL check results of our-mail-server.eu

NEW You can also bulk check multiple servers.

Discover if the mail servers for our-mail-server.eu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 17 Dec 2020 18:22:52 +0000

The mailservers of our-mail-server.eu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @our-mail-server.eu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
our-mail-server.eu
2a01:4f8:c17:800b::1
 10
supported
our-mail-server.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
7 s
our-mail-server.eu
49.12.73.201
 10
supported
our-mail-server.eu
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @our-mail-server.eu address so far. Test mail delivery

Certificates

First seen at:

CN=our-mail-server.eu

Certificate chain
Subject
Common Name (CN)
  • our-mail-server.eu
Alternative Names
  • imap.our-mail-server.eu
  • mail.our-mail-server.eu
  • our-mail-server.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-11-21
Not valid after
2021-02-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
95:23:19:8F:33:B4:C7:80:84:29:52:28:78:9D:F2:EB:DA:E7:36:D5:EE:93:CE:87:A0:9D:A7:B1:5F:EE:54:FC
SHA1
95:03:67:4E:1D:0D:72:33:36:B9:96:0F:9B:E9:4C:2F:C2:BB:A5:F4
X509v3 extensions
subjectKeyIdentifier
  • 82:6E:42:DF:9D:9D:8A:84:B3:C7:F1:00:1E:EE:01:EB:30:6F:FF:AB
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:
  • D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
  • Timestamp : Nov 21 20:02:37.758 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:DE:67:E9:06:2F:3E:AC:F3:9C:28:DA:
  • D9:35:68:32:88:41:6C:FC:0B:39:FC:BC:D1:65:33:B1:
  • 32:82:DC:B4:63:02:21:00:BE:35:01:47:64:D3:04:A3:
  • 6D:E5:AB:7C:6C:16:AF:8B:3B:F9:06:AD:ED:F4:1C:42:
  • 94:57:16:AC:5B:A9:3C:AC
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Nov 21 20:02:37.823 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F9:BF:77:6E:4B:95:43:13:13:38:FD:
  • 60:C1:5F:20:D6:31:BB:65:38:77:32:CF:72:54:83:BF:
  • 91:2B:36:F6:6F:02:20:5A:ED:FE:CE:0D:C9:2A:7C:9D:
  • 75:CB:68:CC:87:1E:97:70:74:57:24:9F:6D:73:7C:36:
  • 0E:99:91:D2:57:B2:BB

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.our-mail-server.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid